| cdnjs.cloudflare.com/ajax/libs/jquery/3.7.0/jquery.min.js | 104.17.24.14 | 200 OK | 27 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/jquery/3.7.0/jquery.min.js IP104.17.24.14:443
Requested byhttps://ekfbq.maxymus.xyz/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hashe6c2415c0ace414e5153670314ce99a9 5a9eeac34d86e92e5660e0f4f87204f1ed0c8ff6 d8f9afbf492e4c139e9d2bcb9ba6ef7c14921eb509fb703bc7a3f911b774eff8
GET /ajax/libs/jquery/3.7.0/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ekfbq.maxymus.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 20:22:47 GMT
content-type: application/javascript; charset=utf-8
content-length: 27437
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "659afac8-6b2d"
last-modified: Sun, 07 Jan 2024 20:26:00 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 959652
expires: Wed, 16 Apr 2025 20:22:47 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=E%2FVugIisvPsB0tUI3vqERx9q4haAyGrWQLrnV5sBOR%2BS%2BIAaqNyEboxO1aiy%2Byat3AQAFgRNYiT%2F8M3U6rKLCreLvGYLvhpwpJKv013nYXNhqSwuJ5Z%2Bnv6JmRRCFDFdQAXqMMfv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87a949724a971c0a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/intl-tel-input/18.5.0/css/intlTelInput.css | 104.17.24.14 | 200 OK | 2.1 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/intl-tel-input/18.5.0/css/intlTelInput.css IP104.17.24.14:443
Requested byhttps://ekfbq.maxymus.xyz/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
Hash582a1f76889553869a19d492c7728242 7d0ac85f92401984088d1c79d2a8d91b00e16a8a c9ae063d7bf400c91d4056a69889903b54205f2efd6cb224d6041eca58b92cca
GET /ajax/libs/intl-tel-input/18.5.0/css/intlTelInput.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ekfbq.maxymus.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 20:22:47 GMT
content-type: text/css; charset=utf-8
content-length: 2139
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "65a3eb4d-85b"
last-modified: Sun, 14 Jan 2024 14:10:21 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 856891
expires: Wed, 16 Apr 2025 20:22:47 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JBCmABBG84yuZdxrUyl3%2FGzEQh9j5PGtblZcYcEUf4mhfPo%2BNJzZ6oSXqN0iSevZfNkJL74VLx8TdkhPRENgPStc4QFO8uwFJoVqKRGE%2Bsxe7NhycxYcPiJZv%2B1rFMTPot2XW%2Bto"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87a949724a991c0a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/intl-tel-input/18.5.0/js/intlTelInput.min.js | 104.17.24.14 | 200 OK | 8.8 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/intl-tel-input/18.5.0/js/intlTelInput.min.js IP104.17.24.14:443
Requested byhttps://ekfbq.maxymus.xyz/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (27324) Hashddc9d20a5dc24ff745358bba80eea1f3 c569c6d9f50923de1753da1f2c090132fa455f55 54bc983ea406933001939caacb25ec98a9f633b8f2d54aa5ca3180948d6fe389
GET /ajax/libs/intl-tel-input/18.5.0/js/intlTelInput.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ekfbq.maxymus.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 20:22:47 GMT
content-type: application/javascript; charset=utf-8
content-length: 8765
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "65a3eb4d-223d"
last-modified: Sun, 14 Jan 2024 14:10:21 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1624777
expires: Wed, 16 Apr 2025 20:22:47 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PJ6HWukzLPU2cfaIBvI%2BBAhVvfB0as87gc9vJYhLfITby900r7Vm9lfYB7nYle%2Bnjgksjfm5YDA5SRufFmihXo92Kb5xffr%2F83m%2F%2F7GZvFSOHWUCvSlvkP4nHMJ4jCoVEoCxehy9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87a949724ab01c0a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/apexcharts | 151.101.129.229 | 200 OK | 142 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/apexcharts IP151.101.129.229:443
Requested byhttps://ekfbq.maxymus.xyz/ CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeJavaScript source, ASCII text, with very long lines (65443) Size142 kB (142051 bytes) Hashac1694aaf8bb24b61b22aac765e515fd 19eddac808f946e46db18e0c138183436eb4e790 a1d36da20df56252b36af22b7c6663e26780b20739bbc6e98306462816543f44
GET /npm/apexcharts HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ekfbq.maxymus.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 3.49.0
x-jsd-version-type: version
etag: W/"81507-Ge3ayAj5RuRtsY4ME4GDQ26055A"
content-encoding: br
accept-ranges: bytes
date: Fri, 26 Apr 2024 20:22:47 GMT
age: 9390
x-served-by: cache-fra-etou8220144-FRA, cache-hel1410026-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 142051
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 | 216.58.207.227 | 200 OK | 47 kB |
URL GET HTTP/2fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 IP216.58.207.227:443
Requested byhttps://ekfbq.maxymus.xyz/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33 ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 46704, version 1.0 Hash30a274cd01b6eeb0b082c918b0697f1e 393311bde26b99a4ad935fa55bad1dce7994388b 88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42
GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ekfbq.maxymus.xyz
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 06:00:52 GMT
expires: Sat, 26 Apr 2025 06:00:52 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
age: 51715
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 | 216.58.207.227 | 200 OK | 47 kB |
URL GET HTTP/2fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 IP216.58.207.227:443
Requested byhttps://ekfbq.maxymus.xyz/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33 ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 46704, version 1.0 Hash30a274cd01b6eeb0b082c918b0697f1e 393311bde26b99a4ad935fa55bad1dce7994388b 88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42
GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ekfbq.maxymus.xyz
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 06:00:52 GMT
expires: Sat, 26 Apr 2025 06:00:52 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
age: 51715
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa25L7SUc.woff2 | 216.58.207.227 | 200 OK | 80 kB |
URL GET HTTP/2fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa25L7SUc.woff2 IP216.58.207.227:443
Requested byhttps://ekfbq.maxymus.xyz/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33 ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 79940, version 1.0 Hash26859342514946edd3e8dceb17f55c92 34ee9d842c0d0e46325ae608fcd75929e7b27269 a2bfd9fe607d28fd07b05046e622818b8b5b94a358d53853a0d3f03e597cdc71
GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa25L7SUc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ekfbq.maxymus.xyz
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 79940
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 05:52:23 GMT
expires: Sat, 26 Apr 2025 05:52:23 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:22:52 GMT
content-type: font/woff2
age: 52224
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa25L7SUc.woff2 | 216.58.207.227 | 200 OK | 80 kB |
URL GET HTTP/2fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa25L7SUc.woff2 IP216.58.207.227:443
Requested byhttps://ekfbq.maxymus.xyz/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33 ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 79940, version 1.0 Hash26859342514946edd3e8dceb17f55c92 34ee9d842c0d0e46325ae608fcd75929e7b27269 a2bfd9fe607d28fd07b05046e622818b8b5b94a358d53853a0d3f03e597cdc71
GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa25L7SUc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ekfbq.maxymus.xyz
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 79940
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 05:52:23 GMT
expires: Sat, 26 Apr 2025 05:52:23 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:22:52 GMT
content-type: font/woff2
age: 52224
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 | 216.58.207.227 | 200 OK | 47 kB |
URL GET HTTP/2fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 IP216.58.207.227:443
Requested byhttps://ekfbq.maxymus.xyz/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33 ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 46704, version 1.0 Hash30a274cd01b6eeb0b082c918b0697f1e 393311bde26b99a4ad935fa55bad1dce7994388b 88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42
GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ekfbq.maxymus.xyz
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 06:00:52 GMT
expires: Sat, 26 Apr 2025 06:00:52 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
age: 51715
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa25L7SUc.woff2 | 216.58.207.227 | 200 OK | 80 kB |
URL GET HTTP/2fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa25L7SUc.woff2 IP216.58.207.227:443
Requested byhttps://ekfbq.maxymus.xyz/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33 ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 79940, version 1.0 Hash26859342514946edd3e8dceb17f55c92 34ee9d842c0d0e46325ae608fcd75929e7b27269 a2bfd9fe607d28fd07b05046e622818b8b5b94a358d53853a0d3f03e597cdc71
GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa25L7SUc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ekfbq.maxymus.xyz
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 79940
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 05:52:23 GMT
expires: Sat, 26 Apr 2025 05:52:23 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:22:52 GMT
content-type: font/woff2
age: 52224
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| api.binance.com/api/v3/klines?symbol=BTCUSDT&interval=5m | 143.204.51.178 | 200 OK | 27 kB |
URL GET HTTP/2api.binance.com/api/v3/klines?symbol=BTCUSDT&interval=5m IP143.204.51.178:443
Requested byhttps://ekfbq.maxymus.xyz/ CertificateIssuerDigiCert Inc Subject*.binance.com Fingerprint9B:8A:1F:BC:5D:B7:2C:25:77:E2:84:EA:7F:03:7A:89:D7:D5:E9:44 ValidityThu, 11 Jan 2024 00:00:00 GMT - Mon, 10 Feb 2025 23:59:59 GMT
Hash4a8c8dd0cda541ac69ebf4b507a27711 95ac922b79ce451a7d1a17dd5aa04fb7ae033587 d31f1b2bfa21370b02ebff4493ebfebb9f0679f6ed641e4f3620efe6be200234
GET /api/v3/klines?symbol=BTCUSDT&interval=5m HTTP/1.1
Host: api.binance.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ekfbq.maxymus.xyz/
Origin: https://ekfbq.maxymus.xyz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json;charset=UTF-8
content-length: 26993
date: Fri, 26 Apr 2024 20:22:48 GMT
server: nginx
x-mbx-uuid: 4a56245c-9fea-42a8-9260-a67829f3dc0c
x-mbx-used-weight: 2
x-mbx-used-weight-1m: 2
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubdomains
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-security-policy: default-src 'self'
x-content-security-policy: default-src 'self'
x-webkit-csp: default-src 'self'
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, OPTIONS
x-cache: Miss from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ueI45xy-adIKjCs47CI3i87n7jmVU9QqTOyq7qt4slPky2aGpiSpJA==
X-Firefox-Spdy: h2
|
|
| getyourapi.site/api/geolocation | 3.122.218.248 | 200 OK | 102 B |
URL GET HTTP/2getyourapi.site/api/geolocation IP3.122.218.248:443
Requested byhttps://ekfbq.maxymus.xyz/ CertificateIssuerLet's Encrypt Subjectgetyourapi.site Fingerprint5E:24:43:8B:8E:E3:57:4A:19:01:E0:C3:8C:45:B8:23:F5:E0:AD:F6 ValidityFri, 08 Mar 2024 09:11:52 GMT - Thu, 06 Jun 2024 09:11:51 GMT
Hash4eb451b8ec35076295bb4852bf942ce5 413cca64310dc9069ece1c7827bb2ba1c637fa32 4ea16c2bc67e85a837c5d60547aa63cc05d52b8c7603313d26b2c33ad3d24cfd
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /api/geolocation HTTP/1.1
Host: getyourapi.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ekfbq.maxymus.xyz
DNT: 1
Connection: keep-alive
Referer: https://ekfbq.maxymus.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty
date: Fri, 26 Apr 2024 20:22:48 GMT
content-type: application/json; charset=utf-8
content-length: 102
x-powered-by: Express
access-control-allow-origin: https://ekfbq.maxymus.xyz
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 600
access-control-allow-credentials: true
access-control-allow-headers: origin, content-type, accept, authorization
access-control-expose-headers: content-type, authorization, x-request-id
x-request-id: 3daf6021-f906-407b-b92c-96d03111c66b
etag: W/"66-QTzKZDENyQaezhx4J7srocY3+jI"
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/intl-tel-input/18.5.0/img/flags.png?1 | 104.17.24.14 | | 67 kB |
URL GET cdnjs.cloudflare.com/ajax/libs/intl-tel-input/18.5.0/img/flags.png?1 IP104.17.24.14:0
Requested byhttps://ekfbq.maxymus.xyz/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typePNG image data, 5762 x 15, 8-bit/color RGBA, non-interlaced Hash8ec9f8e2915d6bf684abf7629a1b3df0 00e80b4f1321a71de50ade6eaea01eb1713c5ce3 3af394920236bdcab19b5514b8f67e06b194e29017368d6a9d83d598947f203b
GET /ajax/libs/intl-tel-input/18.5.0/img/flags.png?1 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/ajax/libs/intl-tel-input/18.5.0/css/intlTelInput.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 20:22:48 GMT
content-type: image/png; charset=utf-8
content-length: 67119
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "65a3eb4d-1062f"
last-modified: Sun, 14 Jan 2024 14:10:21 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1883763
expires: Wed, 16 Apr 2025 20:22:48 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=o4O1NVG26hrFZ4v4BQ04nWwhO6pvP6ARY%2FzmnGkZ0aPEOQlSKPOAMiXf67bL92G6RivbwS1RFURFv3wQklouhG05si4AWMqpTM5JU15AWxdDhjJB9YrfgU47%2Bn07IY%2Fh6rMHOzun"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87a9497a4f1b56be-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cdnjs.cloudflare.com/ajax/libs/intl-tel-input/18.5.0/js/utils.min.js | 104.17.24.14 | 200 OK | 46 kB |
URL GET HTTP/3cdnjs.cloudflare.com/ajax/libs/intl-tel-input/18.5.0/js/utils.min.js IP104.17.24.14:443
Requested byhttps://ekfbq.maxymus.xyz/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hashb34007e0189bdb6d937004b2d35dc0d8 4836255d80bf984e066263a2bffaa1467cfc4cb5 b35c83e4dc3713230edfbda43508fb2fb92d8e07c4189f19d201ba199ef810a2
GET /ajax/libs/intl-tel-input/18.5.0/js/utils.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ekfbq.maxymus.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 20:22:48 GMT
content-type: application/javascript; charset=utf-8
content-length: 46045
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "65a3eb4d-b3dd"
last-modified: Sun, 14 Jan 2024 14:10:21 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 5909336
expires: Wed, 16 Apr 2025 20:22:48 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EOR5M%2Bv16KjYHziG8uMSKudiX%2BvtxTfSvXw3HGzJNHoPqoVC4L3Rn9qRJtJ6OYjOYMEEHbPYw00twWylDEcsGtmcw0xJZXr%2BSoUoxUzQlJk%2FrQyTHmHjWRzgHPvNqCmXv4Jvbei5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87a9497a4f2356be-OSL
alt-svc: h3=":443"; ma=86400
|
|
| ekfbq.maxymus.xyz/favicon.ico | 23.95.186.190 | 200 OK | 1.2 kB |
URL GET HTTP/2ekfbq.maxymus.xyz/favicon.ico IP23.95.186.190:443 ASN#36352 AS-COLOCROSSING
Requested byhttps://ekfbq.maxymus.xyz/ CertificateIssuerLet's Encrypt Subjectekfbq.maxymus.xyz Fingerprint82:10:67:AE:E0:DC:D0:C5:24:0B:2D:DB:76:55:9B:2F:92:6B:6F:3F ValidityMon, 22 Apr 2024 20:21:42 GMT - Sun, 21 Jul 2024 20:21:41 GMT
File typeMS Windows icon resource - 1 icon, 16x16, 32 bits/pixel Hash8527a56eeb82457d1277fd0e6c296e1a 0446d8d4f78544e132207601411dca94fdede60c f26f138b96bd6d18aecc0093ac3f0e77b149b4a3caf2844576de760e09d8a2a2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: ekfbq.maxymus.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ekfbq.maxymus.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty
date: Fri, 26 Apr 2024 20:22:47 GMT
content-type: image/x-icon
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| ekfbq.maxymus.xyz/css/style.css | 23.95.186.190 | 200 OK | 7.7 kB |
URL GET HTTP/2ekfbq.maxymus.xyz/css/style.css IP23.95.186.190:443 ASN#36352 AS-COLOCROSSING
Requested byhttps://ekfbq.maxymus.xyz/ CertificateIssuerLet's Encrypt Subjectekfbq.maxymus.xyz Fingerprint82:10:67:AE:E0:DC:D0:C5:24:0B:2D:DB:76:55:9B:2F:92:6B:6F:3F ValidityMon, 22 Apr 2024 20:21:42 GMT - Sun, 21 Jul 2024 20:21:41 GMT
File typeASCII text, with very long lines (8552), with no line terminators Hashace4de79e107b5e5d9c1312e10a27330 56becafc7cc7a4519ae40cca895426d04ca346e6 c4d289c4ac76569484f207ea6176759408864d05272d3811fa37edef002f2e59
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/style.css HTTP/1.1
Host: ekfbq.maxymus.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ekfbq.maxymus.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty
date: Fri, 26 Apr 2024 20:22:47 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| ekfbq.maxymus.xyz/css/form.css | 23.95.186.190 | 200 OK | 7.3 kB |
URL GET HTTP/2ekfbq.maxymus.xyz/css/form.css IP23.95.186.190:443 ASN#36352 AS-COLOCROSSING
Requested byhttps://ekfbq.maxymus.xyz/ CertificateIssuerLet's Encrypt Subjectekfbq.maxymus.xyz Fingerprint82:10:67:AE:E0:DC:D0:C5:24:0B:2D:DB:76:55:9B:2F:92:6B:6F:3F ValidityMon, 22 Apr 2024 20:21:42 GMT - Sun, 21 Jul 2024 20:21:41 GMT
File typeUnicode text, UTF-8 text, with very long lines (7910), with no line terminators Hashf21aa0e6da701941f6f71dcfd25fdc8a 1d8722da1e5be5b223a73d1b2aaf6a065f7e67dd 59ccd656a67a387c42fb34b94aa556b090110906f93b3670154cea7a0fb39702
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/form.css HTTP/1.1
Host: ekfbq.maxymus.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ekfbq.maxymus.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty
date: Fri, 26 Apr 2024 20:22:47 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| ekfbq.maxymus.xyz/js/trading.js | 23.95.186.190 | 200 OK | 6.9 kB |
URL GET HTTP/2ekfbq.maxymus.xyz/js/trading.js IP23.95.186.190:443 ASN#36352 AS-COLOCROSSING
Requested byhttps://ekfbq.maxymus.xyz/ CertificateIssuerLet's Encrypt Subjectekfbq.maxymus.xyz Fingerprint82:10:67:AE:E0:DC:D0:C5:24:0B:2D:DB:76:55:9B:2F:92:6B:6F:3F ValidityMon, 22 Apr 2024 20:21:42 GMT - Sun, 21 Jul 2024 20:21:41 GMT
File typeUnicode text, UTF-8 text, with very long lines (7519), with no line terminators Hash39855287f09634c7f712c63a637a9bf8 d9782af08b164e965c0a5989bab7a7e47989826b a5c3d1a701ec7bb44234d7eabe5d4c38a773de16c39174b8fff326651e2bcdd4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/trading.js HTTP/1.1
Host: ekfbq.maxymus.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ekfbq.maxymus.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty
date: Fri, 26 Apr 2024 20:22:47 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| ekfbq.maxymus.xyz/favicon.ico | 23.95.186.190 | 200 OK | 1.2 kB |
URL GET HTTP/2ekfbq.maxymus.xyz/favicon.ico IP23.95.186.190:443 ASN#36352 AS-COLOCROSSING
Requested byhttps://ekfbq.maxymus.xyz/ CertificateIssuerLet's Encrypt Subjectekfbq.maxymus.xyz Fingerprint82:10:67:AE:E0:DC:D0:C5:24:0B:2D:DB:76:55:9B:2F:92:6B:6F:3F ValidityMon, 22 Apr 2024 20:21:42 GMT - Sun, 21 Jul 2024 20:21:41 GMT
File typeMS Windows icon resource - 1 icon, 16x16, 32 bits/pixel Hash8527a56eeb82457d1277fd0e6c296e1a 0446d8d4f78544e132207601411dca94fdede60c f26f138b96bd6d18aecc0093ac3f0e77b149b4a3caf2844576de760e09d8a2a2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: ekfbq.maxymus.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ekfbq.maxymus.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty
date: Fri, 26 Apr 2024 20:22:48 GMT
content-type: image/x-icon
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| ekfbq.maxymus.xyz/css/modal.css | 23.95.186.190 | 200 OK | 3.1 kB |
URL GET HTTP/2ekfbq.maxymus.xyz/css/modal.css IP23.95.186.190:443 ASN#36352 AS-COLOCROSSING
Requested byhttps://ekfbq.maxymus.xyz/ CertificateIssuerLet's Encrypt Subjectekfbq.maxymus.xyz Fingerprint82:10:67:AE:E0:DC:D0:C5:24:0B:2D:DB:76:55:9B:2F:92:6B:6F:3F ValidityMon, 22 Apr 2024 20:21:42 GMT - Sun, 21 Jul 2024 20:21:41 GMT
File typeASCII text, with very long lines (3316), with no line terminators Hash1a1f3d9991325b58e66cd2ded32edfab cc2964e31120652b5c26d59a79c8755125def4c7 e62e67ead37498d3f0e9e8bf598d1903e5025642f6469295f31424f70d41bec1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/modal.css HTTP/1.1
Host: ekfbq.maxymus.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ekfbq.maxymus.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty
date: Fri, 26 Apr 2024 20:22:47 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| | 23.95.186.190 | 200 OK | 34 kB |
URL User Request GET HTTP/2IP23.95.186.190:443 ASN#36352 AS-COLOCROSSING
CertificateIssuerLet's Encrypt Subjectekfbq.maxymus.xyz Fingerprint82:10:67:AE:E0:DC:D0:C5:24:0B:2D:DB:76:55:9B:2F:92:6B:6F:3F ValidityMon, 22 Apr 2024 20:21:42 GMT - Sun, 21 Jul 2024 20:21:41 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: ekfbq.maxymus.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty
date: Fri, 26 Apr 2024 20:22:47 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| ekfbq.maxymus.xyz/js/candle-stick-chart.js | 23.95.186.190 | 200 OK | 1.2 kB |
URL GET HTTP/2ekfbq.maxymus.xyz/js/candle-stick-chart.js IP23.95.186.190:443 ASN#36352 AS-COLOCROSSING
Requested byhttps://ekfbq.maxymus.xyz/ CertificateIssuerLet's Encrypt Subjectekfbq.maxymus.xyz Fingerprint82:10:67:AE:E0:DC:D0:C5:24:0B:2D:DB:76:55:9B:2F:92:6B:6F:3F ValidityMon, 22 Apr 2024 20:21:42 GMT - Sun, 21 Jul 2024 20:21:41 GMT
File typeUnicode text, UTF-8 text, with very long lines (1260), with no line terminators Hash50d6a37a8ec9daa1d4735bdeabf7c867 324158e34d9a384f3db26ae880efed0e0754a520 f126ade1f1092d3c9ebe6eb0119d1282780d5dacf9ed9f9a6e13625a896c9f1d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/candle-stick-chart.js HTTP/1.1
Host: ekfbq.maxymus.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ekfbq.maxymus.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty
date: Fri, 26 Apr 2024 20:22:47 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Inter:wght@400;500;700&display=swap | 142.250.74.106 | 200 OK | 7.2 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Inter:wght@400;500;700&display=swap IP142.250.74.106:443
Requested byhttps://ekfbq.maxymus.xyz/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50 ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT
File typeASCII text, with very long lines (7431), with no line terminators Hash00ceb200f4ee964ccd9a2334c070a738 9d8e63175adfd5738e5f676abe5c23c2508848d1 e0f240270a7d284d2883f121f40b8115966d347a755d7348ca26345d7c108033
GET /css2?family=Inter:wght@400;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ekfbq.maxymus.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 Apr 2024 20:22:47 GMT
date: Fri, 26 Apr 2024 20:22:47 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|